Skip to content
Send all traffic over VPN connection working via tun not tap
Got a problem with Viscosity or need help? Ask here!
I have a pfSense box setup with two OpenVPN server instances, one tun the other tap.
The tun interface routes perfectly, I can enable Send all traffic over VPN connection and see that all internet traffic for my remote clients goes over it.
With the tap interface however this doesn't seem to happen. All my local traffic goes out via the default gateway of the machine's local network device instead of using the VPN gateway.
Any ideas?
Here's my default routing table (netstat -nr):
The tun interface routes perfectly, I can enable Send all traffic over VPN connection and see that all internet traffic for my remote clients goes over it.
With the tap interface however this doesn't seem to happen. All my local traffic goes out via the default gateway of the machine's local network device instead of using the VPN gateway.
Any ideas?
Here's my default routing table (netstat -nr):
Code: Select all
TUN:Internet:
Destination Gateway Flags Refs Use Netif Expire
default 10.64.104.1 UGSc 124 0 en0
10.64.104/21 link#4 UCS 61 0 en0
10.64.104.1/32 link#4 UCS 5 0 en0
10.64.104.1 0:10:db:ff:10:2 UHLWIir 35 19 en0 1199
10.64.104.193 link#4 UHLWIi 1 1 en0
10.64.105.93 a4:b8:5:77:74:e7 UHLWIi 1 4 en0 1184
10.64.105.252 54:60:9:e3:18:fa UHLWIi 2 8 en0 1199
10.64.106.147 f8:77:b8:8b:62:1b UHLWIi 1 29 en0 1197
10.64.106.180 4:1e:64:ec:ff:75 UHLWIi 1 4 en0 1178
10.64.106.196 58:7f:57:41:b7:df UHLWIi 1 1 en0 1199
10.64.106.216 c4:b3:1:d0:ef:c7 UHLWIi 1 4 en0 1174
10.64.107.130 e0:94:67:72:ba:96 UHLWIi 1 5 en0 1182
10.64.108.62 d8:5d:e2:3d:13:5d UHLWIi 1 4 en0 1179
10.64.108.163 a0:99:9b:2:c6:ab UHLWIi 1 2 en0 1199
10.64.109.135/32 link#4 UCS 2 0 en0
10.64.109.135 a4:5e:60:e2:da:43 UHLWIi 1 2706 lo0
10.64.111.255 ff:ff:ff:ff:ff:ff UHLWbI 1 5 en0
127 127.0.0.1 UCS 2 1696 lo0
127.0.0.1 127.0.0.1 UH 18 1074735 lo0
127.255.255.255 127.0.0.1 UHWIi 1 1 lo0
169.254 link#4 UCS 2 0 en0
169.254.2.7 link#4 UHLSW 1 1 en0
224.0.0 link#4 UmCS 2 0 en0
224.0.0.251 1:0:5e:0:0:fb UHmLWI 1 0 en0
255.255.255.255/32 link#4 UCS 3 0 en0
255.255.255.255 ff:ff:ff:ff:ff:ff UHLWbI 1 1 en0
Code: Select all
TAP:Routing tables
Internet:
Destination Gateway Flags Refs Use Netif Expire
0/1 10.1.10.1 UGSc 8 0 utun1
default 10.64.104.1 UGSc 1 0 en0
10.1/24 10.1.10.1 UGSc 5 0 utun1
10.1.5.12/32 10.1.10.1 UGSc 2 0 utun1
10.1.10/24 10.1.10.50 UGSc 44 0 utun1
10.1.10.50 10.1.10.50 UH 23 44 utun1
10.64.104/21 link#4 UCS 20 0 en0
10.64.104.1/32 link#4 UCS 3 0 en0
10.64.104.1 0:10:db:ff:10:2 UHLWIir 5 34 en0 1200
10.64.104.118 18:5e:f:73:cd:c3 UHLWIi 1 12 en0 1189
10.64.104.193 a0:99:9b:6:d2:7 UHLWIi 1 12 en0 1162
10.64.105.42 e0:5f:45:a8:a4:47 UHLWIi 1 4 en0 1195
10.64.105.93 a4:b8:5:77:74:e7 UHLWIi 1 13 en0 1195
10.64.105.101 b4:18:d1:ec:6e:f3 UHLWIi 1 3 en0 1199
10.64.105.252 54:60:9:e3:18:fa UHLWIi 3 26 en0 1200
10.64.106.96 dc:41:5f:6c:fb:18 UHLWIi 1 5 en0 1200
10.64.106.147 f8:77:b8:8b:62:1b UHLWIi 1 41 en0 1199
10.64.106.180 4:1e:64:ec:ff:75 UHLWIi 1 16 en0 1128
10.64.106.196 58:7f:57:41:b7:df UHLWIi 1 13 en0 1149
10.64.106.216 c4:b3:1:d0:ef:c7 UHLWIi 1 16 en0 1124
10.64.106.228 f4:5c:89:b5:29:3b UHLWIi 2 3 en0 1199
10.64.107.130 e0:94:67:72:ba:96 UHLWIi 1 18 en0 1192
10.64.107.143 98:1:a7:a1:69:f3 UHLWIi 1 3 en0 1200
10.64.108.62 d8:5d:e2:3d:13:5d UHLWIi 1 13 en0 1199
10.64.108.163 a0:99:9b:2:c6:ab UHLWIi 1 14 en0 1154
10.64.109.135/32 link#4 UCS 2 0 en0
10.64.109.135 a4:5e:60:e2:da:43 UHLWIi 1 2747 lo0
10.64.109.242 c0:4a:0:28:86:21 UHLWIi 1 3 en0 1199
10.64.111.137 8c:2d:aa:3f:a2:4f UHLWIi 1 3 en0 1199
10.64.111.255 ff:ff:ff:ff:ff:ff UHLWbI 1 23 en0
82.68.1.166/32 10.64.104.1 UGSc 2 0 en0
127 127.0.0.1 UCS 2 1708 lo0
127.0.0.1 127.0.0.1 UH 20 1074823 lo0
127.255.255.255 127.0.0.1 UHWIi 1 1 lo0
128.0/1 10.1.10.1 UGSc 9 0 utun1
169.254 link#4 UCS 2 0 en0
169.254.2.7 link#4 UHLSW 1 1 en0
224.0.0 link#4 UmCS 2 0 en0
224.0.0.251 1:0:5e:0:0:fb UHmLWI 1 0 en0
255.255.255.255/32 link#4 UCS 2 0 en0
255.255.255.255 ff:ff:ff:ff:ff:ff UHLWbI 1 3 en0
Code: Select all
Internet:
Destination Gateway Flags Refs Use Netif Expire
default 10.64.104.1 UGSc 144 0 en0
default 10.1.0.1 UGScI 5 0 tap0
10.1/24 link#17 UCS 138 0 tap0
10.1.0.1/32 link#17 UCS 2 0 tap0
10.1.0.1 0:bd:e0:77:0:2 UHLWIir 6 2 tap0 1194
10.1.0.2 link#17 UHLWIi 1 1 tap0
10.1.0.3 link#17 UHLWIi 1 1 tap0
10.1.0.4 link#17 UHLWIi 1 1 tap0
10.1.0.5 link#17 UHLWIi 1 1 tap0
10.1.0.6 link#17 UHLWIi 1 1 tap0
10.1.0.7 link#17 UHLWIi 1 1 tap0
10.1.0.8 link#17 UHLWIi 1 1 tap0
10.1.0.9 link#17 UHLWIi 1 1 tap0
10.1.0.10 link#17 UHLWIi 1 1 tap0
10.1.0.11 link#17 UHLWIi 1 1 tap0
10.1.0.12 link#17 UHLWIi 1 1 tap0
10.1.0.13 link#17 UHLWIi 1 1 tap0
10.1.0.14 6c:c2:17:a5:ef:40 UHLWIi 1 1 tap0 1196
10.1.0.15 link#17 UHLWIi 1 1 tap0
10.1.0.16 link#17 UHLWIi 1 1 tap0
10.1.0.17 link#17 UHLWIi 1 1 tap0
10.1.0.18 link#17 UHLWIi 1 1 tap0
10.1.0.19 link#17 UHLWIi 1 1 tap0
10.1.0.20 link#17 UHLWIi 1 1 tap0
10.1.0.21 link#17 UHLWIi 1 1 tap0
10.1.0.22 link#17 UHLWIi 1 1 tap0
10.1.0.23 link#17 UHLWIi 1 1 tap0
10.1.0.24 0:25:90:ab:5e:60 UHLWIi 1 1 tap0 1197
10.1.0.25 link#17 UHLWIi 1 1 tap0
10.1.0.26 68:b5:99:cd:90:68 UHLWIi 1 1 tap0 1197
10.1.0.27 link#17 UHLWIi 1 1 tap0
10.1.0.28 link#17 UHLWIi 1 1 tap0
10.1.0.29 link#17 UHLWIi 1 1 tap0
10.1.0.30 0:c:29:15:3d:69 UHLWIi 1 1 tap0 1197
10.1.0.31 0:c:29:56:32:61 UHLWIi 6 235 tap0 1200
10.1.0.32 0:c:29:28:51:1c UHLWIi 1 1 tap0 1197
10.1.0.33 2c:23:3a:d2:d5:ca UHLWIi 1 1 tap0 1197
10.1.0.34 link#17 UHLWIi 1 1 tap0
10.1.0.35 link#17 UHLWIi 1 1 tap0
10.1.0.36 link#17 UHLWIi 1 1 tap0
10.1.0.37 link#17 UHLWIi 1 1 tap0
10.1.0.38 link#17 UHLWIi 1 1 tap0
10.1.0.39 0:25:90:ae:2f:64 UHLWIi 1 1 tap0 1197
10.1.0.40 link#17 UHLWIi 1 1 tap0
10.1.0.41 0:11:32:62:58:e5 UHLWIi 1 1 tap0 1197
10.1.0.42 link#17 UHLWIi 1 1 tap0
10.1.0.43 link#17 UHLWIi 1 1 tap0
10.1.0.44 0:50:56:b0:0:21 UHLWIi 1 1 tap0 1197
10.1.0.45 link#17 UHLWIi 1 1 tap0
10.1.0.46 f0:92:1c:70:81:50 UHLWIi 1 1 tap0 1197
10.1.0.47 link#17 UHLWIi 1 1 tap0
10.1.0.48 0:50:56:b0:0:25 UHLWIi 1 1 tap0 1197
10.1.0.49 0:50:56:b0:76:11 UHLWIi 1 1 tap0 1197
10.1.0.50 link#17 UHLWIi 1 1 tap0
10.1.0.51 link#17 UHLWIi 1 1 tap0
10.1.0.52 link#17 UHLWIi 1 1 tap0
10.1.0.53 link#17 UHLWIi 1 1 tap0
10.1.0.54 link#17 UHLWIi 1 1 tap0
10.1.0.55 link#17 UHLWIi 1 1 tap0
10.1.0.56 link#17 UHLWIi 1 1 tap0
10.1.0.57 link#17 UHLWIi 1 1 tap0
10.1.0.58 link#17 UHLWIi 1 1 tap0
10.1.0.59 link#17 UHLWIi 1 1 tap0
10.1.0.60 link#17 UHLWIi 1 1 tap0
10.1.0.61 link#17 UHLWIi 1 1 tap0
10.1.0.62 link#17 UHLWIi 1 1 tap0
10.1.0.63 link#17 UHLWIi 1 1 tap0
10.1.0.64 link#17 UHLWIi 1 1 tap0
10.1.0.65 link#17 UHLWIi 1 1 tap0
10.1.0.66 link#17 UHLWIi 1 1 tap0
10.1.0.67 link#17 UHLWIi 1 1 tap0
10.1.0.68 link#17 UHLWIi 1 1 tap0
10.1.0.69 link#17 UHLWIi 1 1 tap0
10.1.0.70 link#17 UHLWIi 1 1 tap0
10.1.0.71 link#17 UHLWIi 1 1 tap0
10.1.0.72 link#17 UHLWIi 1 1 tap0
10.1.0.73 link#17 UHLWIi 1 1 tap0
10.1.0.74 link#17 UHLWIi 1 1 tap0
10.1.0.75 link#17 UHLWIi 1 1 tap0
10.1.0.76 link#17 UHLWIi 1 1 tap0
10.1.0.77 link#17 UHLWIi 1 1 tap0
10.1.0.78 link#17 UHLWIi 1 1 tap0
10.1.0.79 link#17 UHLWIi 1 1 tap0
10.1.0.80 link#17 UHLWIi 1 1 tap0
10.1.0.81 link#17 UHLWIi 1 1 tap0
10.1.0.82 link#17 UHLWIi 1 1 tap0
10.1.0.83 link#17 UHLWIi 1 1 tap0
10.1.0.84 link#17 UHLWIi 1 1 tap0
10.1.0.85 link#17 UHLWIi 1 1 tap0
10.1.0.86 link#17 UHLWIi 1 1 tap0
10.1.0.87 link#17 UHLWIi 1 1 tap0
10.1.0.88 link#17 UHLWIi 1 1 tap0
10.1.0.89 link#17 UHLWIi 1 1 tap0
10.1.0.90 link#17 UHLWIi 1 1 tap0
10.1.0.91 link#17 UHLWIi 1 1 tap0
10.1.0.92 link#17 UHLWIi 1 1 tap0
10.1.0.93 link#17 UHLWIi 1 1 tap0
10.1.0.94 link#17 UHLWIi 1 1 tap0
10.1.0.95 link#17 UHLWIi 1 1 tap0
10.1.0.96 link#17 UHLWIi 1 1 tap0
10.1.0.97 link#17 UHLWIi 1 1 tap0
10.1.0.98 link#17 UHLWIi 1 1 tap0
10.1.0.99 link#17 UHLWIi 1 1 tap0
10.1.0.100 link#17 UHLWIi 1 1 tap0
10.1.0.101 28:37:37:11:77:99 UHLWIi 1 1 tap0 1199
10.1.0.102 c8:2a:14:58:84:6f UHLWIi 1 1 tap0 1199
10.1.0.103 link#17 UHLWIi 1 1 tap0
10.1.0.104 link#17 UHLWIi 1 1 tap0
10.1.0.105 link#17 UHLWIi 1 1 tap0
10.1.0.106 link#17 UHLWIi 1 1 tap0
10.1.0.107 link#17 UHRLWIi 2 6 tap0 20
10.1.0.108 link#17 UHLWIi 1 1 tap0
10.1.0.109 link#17 UHLWIi 1 1 tap0
10.1.0.110 link#17 UHLWIi 1 1 tap0
10.1.0.111 link#17 UHLWIi 1 1 tap0
10.1.0.112 link#17 UHLWIi 1 1 tap0
10.1.0.113 44:d9:e7:fc:bb:17 UHLWIi 1 1 tap0 1199
10.1.0.114 cc:78:5f:b6:2b:4c UHLWIi 1 1 tap0 1200
10.1.0.115 link#17 UHLWIi 1 1 tap0
10.1.0.116 link#17 UHLWIi 1 1 tap0
10.1.0.117 link#17 UHLWIi 1 1 tap0
10.1.0.118 link#17 UHLWIi 1 1 tap0
10.1.0.119 44:d9:e7:fc:bb:81 UHLWIi 1 1 tap0 1200
10.1.0.120 link#17 UHLWIi 1 1 tap0
10.1.0.121 0:80:77:c6:ed:a1 UHLWIi 1 1 tap0 1200
10.1.0.122 link#17 UHLWIi 1 1 tap0
10.1.0.123 link#17 UHLWIi 1 1 tap0
10.1.0.124 link#17 UHLWIi 1 1 tap0
10.1.0.125 link#17 UHLWIi 1 1 tap0
10.1.0.126 8:5:81:2e:17:44 UHLWIi 3 12 tap0 1195
10.1.0.127 link#17 UHLWIi 1 1 tap0
10.1.0.128 link#17 UHLWIi 1 1 tap0
10.1.0.129 link#17 UHLWIi 1 1 tap0
10.1.0.130 link#17 UHLWIi 1 1 tap0
10.1.0.131 link#17 UHLWIi 1 1 tap0
10.1.0.132 link#17 UHLWIi 1 1 tap0
10.1.0.133 link#17 UHLWIi 1 1 tap0
10.1.0.134 link#17 UHLWIi 1 1 tap0
10.1.0.135 link#17 UHLWIi 1 1 tap0
10.1.0.136 link#17 UHLWIi 1 1 tap0
10.1.0.137 link#17 UHLWIi 2 1 tap0
10.1.0.150/32 link#17 UCS 1 0 tap0
10.1.0.255 ff:ff:ff:ff:ff:ff UHLWbI 1 1 tap0
10.64.104/21 link#4 UCS 35 0 en0
10.64.104.1/32 link#4 UCS 5 0 en0
10.64.104.1 0:10:db:ff:10:2 UHLWIir 24 20 en0 1200
10.64.105.252 54:60:9:e3:18:fa UHLWIi 2 2 en0 1200
10.64.107.130 e0:94:67:72:ba:96 UHLWIi 1 0 en0 1199
10.64.109.135/32 link#4 UCS 2 0 en0
10.64.109.135 a4:5e:60:e2:da:43 UHLWIi 1 2786 lo0
10.64.111.255 ff:ff:ff:ff:ff:ff UHLWbI 1 1 en0
127 127.0.0.1 UCS 2 1715 lo0
127.0.0.1 127.0.0.1 UH 20 1074921 lo0
127.255.255.255 127.0.0.1 UHWIi 1 1 lo0
169.254 link#4 UCS 2 0 en0
169.254 link#17 UCSI 1 0 tap0
169.254.2.7 link#4 UHLSW 1 1 en0
224.0.0 link#4 UmCS 2 0 en0
224.0.0 link#17 UmCSI 1 0 tap0
224.0.0.251 1:0:5e:0:0:fb UHmLWI 1 0 en0
255.255.255.255/32 link#4 UCS 2 0 en0
255.255.255.255/32 link#17 UCSI 1 0 tap0
Hi leonroy,
I recommend checking the OpenVPN log:
http://www.sparklabs.com/support/kb/art ... envpn-log/
Cheers,
James
I recommend checking the OpenVPN log:
http://www.sparklabs.com/support/kb/art ... envpn-log/
Cheers,
James
Web: https://www.sparklabs.com
Support: https://www.sparklabs.com/support
Twitter: https://twitter.com/sparklabs
Support: https://www.sparklabs.com/support
Twitter: https://twitter.com/sparklabs
2 posts
Page 1 of 1